Max CVSS | 5.8 | Min CVSS | 4.9 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2015-4351 | 4.9 |
The Spider Video Player module for Drupal allows remote authenticated users with the "access Spider Video Player administration" permission to delete arbitrary files via a crafted URL.
|
09-06-2016 - 21:38 | 15-06-2015 - 14:59 | |
CVE-2015-4352 | 5.8 |
Cross-site request forgery (CSRF) vulnerability in the Spider Video Player module for Drupal allows remote attackers to hijack the authentication of administrators for requests that delete videos via unspecified vectors.
|
09-06-2016 - 21:31 | 15-06-2015 - 14:59 |